Cyber Defense Search Engine

IP
122.155.164.151

Network
122.155.160.0/19

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://122.155.164.151:5001/ 400

HTTP Title
400 The plain HTTP request was sent to HTTPS port

ASN
AS9335

Organization
CAT Telecom Public Company Limited

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

Product
F5 Nginx

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
a3768245d18923b85ff9fbd3823b817e

HTTP Header MD5
a629a0fe278971ad61801ba6975ba467

HTTP Body MD5
4481ddb7dc4c86ee57d53e06632d175b

HTTP/1.1 400 Bad Request
Server: nginx
Date: Thu, 07 Nov 2024 03:31:23 GMT
Content-Type: text/html
Content-Length: 264
Connection: close

<html>
<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
<body bgcolor="white">
<center><h1>400 Bad Request</h1></center>
<center>The plain HTTP request was sent to HTTPS port</center>
<hr><center>nginx</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:31:23.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "4481ddb7dc4c86ee57d53e06632d175b",
         "bodymmh3" : 1578429100,
         "headermd5" : "a629a0fe278971ad61801ba6975ba467",
         "headermmh3" : 277382730,
         "title" : "400 The plain HTTP request was sent to HTTPS port"
      },
      "length" : 409
   },
   "asn" : "AS9335",
   "city" : "Bangkok",
   "country" : "TH",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Thu, 07 Nov 2024 03:31:23 GMT\r\nContent-Type: text/html\r\nContent-Length: 264\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body bgcolor=\"white\">\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "a3768245d18923b85ff9fbd3823b817e",
   "datammh3" : 227797036,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS9335",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "TH",
      "countryname" : "Thailand",
      "domain" : [
         "cat.net.th",
         "cattelecom.com"
      ],
      "isineu" : "false",
      "latitude" : "15.870032",
      "location" : "15.870032,100.992541",
      "longitude" : "100.992541",
      "netname" : "CAT-IDC2-Service",
      "organization" : "CAT Telecom Public Company Limited",
      "subnet" : "122.155.160.0/19"
   },
   "ip" : "122.155.164.151",
   "ipv6" : "false",
   "latitude" : "13.7063",
   "location" : "13.7063,100.4597",
   "longitude" : "100.4597",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "CAT Telecom Public Company Limited",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 5001,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Bad Request",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 400,
   "subnet" : "122.155.160.0/19",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
27.46.125.156

Network
27.46.0.0/17

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://27.46.125.156:5001/ 400

HTTP Title
400 The plain HTTP request was sent to HTTPS port

ASN
AS17623

Organization
China Unicom Shenzen network

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

Product
F5 Nginx

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
0c1820e0d381850a77897bf32978a1f0

HTTP Header MD5
a629a0fe278971ad61801ba6975ba467

HTTP Body MD5
ea425366a98dfc499c0cbeedb9a4f02a

HTTP/1.1 400 Bad Request
Server: nginx
Date: Thu, 07 Nov 2024 03:31:19 GMT
Content-Type: text/html
Content-Length: 248
Connection: close

<html>
<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<center>The plain HTTP request was sent to HTTPS port</center>
<hr><center>nginx</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:31:19.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "ea425366a98dfc499c0cbeedb9a4f02a",
         "bodymmh3" : 1153229498,
         "headermd5" : "a629a0fe278971ad61801ba6975ba467",
         "headermmh3" : -1017789546,
         "title" : "400 The plain HTTP request was sent to HTTPS port"
      },
      "length" : 393
   },
   "asn" : "AS17623",
   "city" : "Shenzhen",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Thu, 07 Nov 2024 03:31:19 GMT\r\nContent-Type: text/html\r\nContent-Length: 248\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "0c1820e0d381850a77897bf32978a1f0",
   "datammh3" : 190190724,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS17623",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "chinaunicom.cn"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "UNICOM-GD",
      "organization" : "China Unicom Guangdong Province Network",
      "subnet" : "27.46.96.0/19"
   },
   "ip" : "27.46.125.156",
   "ipv6" : "false",
   "latitude" : "22.5559",
   "location" : "22.5559,114.0577",
   "longitude" : "114.0577",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "China Unicom Shenzen network",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 5001,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Bad Request",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 400,
   "subnet" : "27.46.0.0/17",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
200.232.24.42

Network
200.232.0.0/17

Device

<enterprise field>: device.class

Operating System
Microsoft Windows

ASN
AS10429

Organization
TELEFONICA BRASIL S.A

Protocol
unknown

Source
datascan
Operating System
Microsoft Windows

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
bf8358d283c6749daa44432f357fb52f
```
\x02 @X000810040100052\x03
```

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:31:00.000Z",
   "app" : {
      "length" : 20
   },
   "asn" : "AS10429",
   "city" : "S\u00e3o Paulo",
   "country" : "BR",
   "data" : "\\x02 @X000810040100052\\x03",
   "datamd5" : "bf8358d283c6749daa44432f357fb52f",
   "datammh3" : 2138622679,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS10429",
      "continent" : "SA",
      "continentname" : "South America",
      "country" : "BR",
      "countryname" : "Brazil",
      "domain" : [
         "cert.br",
         "net.br",
         "telefonica.com"
      ],
      "isineu" : "false",
      "latitude" : "-14.235004",
      "location" : "-14.235004,-51.92528",
      "longitude" : "-51.92528",
      "netname" : "02.558.157/0001-62",
      "organization" : "TELEFONICA BRASIL S.A",
      "subnet" : "200.232.0.0/17"
   },
   "ip" : "200.232.24.42",
   "ipv6" : "false",
   "latitude" : "-23.6283",
   "location" : "-23.6283,-46.6409",
   "longitude" : "-46.6409",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "TELEFONICA BRASIL S.A",
   "os" : "Windows",
   "osvendor" : "Microsoft",
   "port" : 5001,
   "protocol" : "unknown",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "subnet" : "200.232.0.0/17",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
194.41.36.198

Network
194.41.36.0/23

Device

<enterprise field>: device.class

Operating System
Microsoft Windows

ASN
AS133199

Organization
SonderCloud Limited

Protocol
unknown

Source
datascan
Operating System
Microsoft Windows

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
0801eea59e8d40dd16670664b207f986

\x05\x00\xff\xff\x81!\x01\x05\x00\xff\xff\x01\x00\x01

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:30:58.000Z",
   "app" : {
      "length" : 14
   },
   "asn" : "AS133199",
   "country" : "HK",
   "data" : "\\x05\\x00\\xff\\xff\\x81!\\x01\\x05\\x00\\xff\\xff\\x01\\x00\\x01",
   "datamd5" : "0801eea59e8d40dd16670664b207f986",
   "datammh3" : 314736437,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "ip" : "194.41.36.198",
   "ipv6" : "false",
   "latitude" : "22.2578",
   "location" : "22.2578,114.1657",
   "longitude" : "114.1657",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "SonderCloud Limited",
   "os" : "Windows",
   "osvendor" : "Microsoft",
   "port" : 5001,
   "protocol" : "unknown",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "subnet" : "194.41.36.0/23",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
116.209.24.227

Network
116.208.0.0/15

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://116.209.24.227:5001/ 400

HTTP Title
400 The plain HTTP request was sent to HTTPS port

ASN
AS4134

Organization
Chinanet

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

Product
F5 Nginx

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
0c1820e0d381850a77897bf32978a1f0

HTTP Header MD5
a629a0fe278971ad61801ba6975ba467

HTTP Body MD5
ea425366a98dfc499c0cbeedb9a4f02a

HTTP/1.1 400 Bad Request
Server: nginx
Date: Thu, 07 Nov 2024 03:30:53 GMT
Content-Type: text/html
Content-Length: 248
Connection: close

<html>
<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<center>The plain HTTP request was sent to HTTPS port</center>
<hr><center>nginx</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:30:54.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "ea425366a98dfc499c0cbeedb9a4f02a",
         "bodymmh3" : 1153229498,
         "headermd5" : "a629a0fe278971ad61801ba6975ba467",
         "headermmh3" : -409535541,
         "title" : "400 The plain HTTP request was sent to HTTPS port"
      },
      "length" : 393
   },
   "asn" : "AS4134",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Thu, 07 Nov 2024 03:30:53 GMT\r\nContent-Type: text/html\r\nContent-Length: 248\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "0c1820e0d381850a77897bf32978a1f0",
   "datammh3" : 190190724,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS4134",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "189.cn",
         "chinatelecom.cn"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "CHINANET-HB",
      "organization" : "CHINANET Hubei province network",
      "subnet" : "116.208.0.0/15"
   },
   "ip" : "116.209.24.227",
   "ipv6" : "false",
   "latitude" : "34.7732",
   "location" : "34.7732,113.7220",
   "longitude" : "113.7220",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Chinanet",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 5001,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Bad Request",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 400,
   "subnet" : "116.208.0.0/15",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
91.49.150.152

Network
91.48.0.0/13

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://91.49.150.152:5001/ 400

HTTP Title
400 The plain HTTP request was sent to HTTPS port

ASN
AS3320

Organization
Deutsche Telekom AG

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

Product
F5 Nginx

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
0c1820e0d381850a77897bf32978a1f0

HTTP Header MD5
a629a0fe278971ad61801ba6975ba467

HTTP Body MD5
ea425366a98dfc499c0cbeedb9a4f02a

HTTP/1.1 400 Bad Request
Server: nginx
Date: Thu, 07 Nov 2024 03:30:53 GMT
Content-Type: text/html
Content-Length: 248
Connection: close

<html>
<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<center>The plain HTTP request was sent to HTTPS port</center>
<hr><center>nginx</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:30:53.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "ea425366a98dfc499c0cbeedb9a4f02a",
         "bodymmh3" : 1153229498,
         "headermd5" : "a629a0fe278971ad61801ba6975ba467",
         "headermmh3" : -409535541,
         "title" : "400 The plain HTTP request was sent to HTTPS port"
      },
      "length" : 393
   },
   "asn" : "AS3320",
   "city" : "Heilbronn",
   "country" : "DE",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Thu, 07 Nov 2024 03:30:53 GMT\r\nContent-Type: text/html\r\nContent-Length: 248\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "0c1820e0d381850a77897bf32978a1f0",
   "datammh3" : 190190724,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS3320",
      "continent" : "EU",
      "continentname" : "Europe",
      "country" : "DE",
      "countryname" : "Germany",
      "domain" : [
         "t-ipconnect.de",
         "telekom.de"
      ],
      "isineu" : "true",
      "latitude" : "51.165691",
      "location" : "51.165691,10.451526",
      "longitude" : "10.451526",
      "netname" : "DTAG-DIAL23",
      "organization" : "Deutsche Telekom AG",
      "subnet" : "91.49.0.0/16"
   },
   "ip" : "91.49.150.152",
   "ipv6" : "false",
   "latitude" : "49.1408",
   "location" : "49.1408,9.2149",
   "longitude" : "9.2149",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Deutsche Telekom AG",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 5001,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Bad Request",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 400,
   "subnet" : "91.48.0.0/13",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
180.165.133.22

Network
180.160.0.0/12

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://180.165.133.22:5001/ 400

HTTP Title
400 The plain HTTP request was sent to HTTPS port

ASN
AS4812

Organization
China Telecom Group

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

Product
F5 Nginx

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
0c1820e0d381850a77897bf32978a1f0

HTTP Header MD5
a629a0fe278971ad61801ba6975ba467

HTTP Body MD5
ea425366a98dfc499c0cbeedb9a4f02a

HTTP/1.1 400 Bad Request
Server: nginx
Date: Thu, 07 Nov 2024 03:30:53 GMT
Content-Type: text/html
Content-Length: 248
Connection: close

<html>
<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<center>The plain HTTP request was sent to HTTPS port</center>
<hr><center>nginx</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:30:53.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "ea425366a98dfc499c0cbeedb9a4f02a",
         "bodymmh3" : 1153229498,
         "headermd5" : "a629a0fe278971ad61801ba6975ba467",
         "headermmh3" : -409535541,
         "title" : "400 The plain HTTP request was sent to HTTPS port"
      },
      "length" : 393
   },
   "asn" : "AS4812",
   "city" : "Shanghai",
   "country" : "CN",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Thu, 07 Nov 2024 03:30:53 GMT\r\nContent-Type: text/html\r\nContent-Length: 248\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "0c1820e0d381850a77897bf32978a1f0",
   "datammh3" : 190190724,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS4812",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "CN",
      "countryname" : "China",
      "domain" : [
         "chinatelecom.cn"
      ],
      "isineu" : "false",
      "latitude" : "35.86166",
      "location" : "35.86166,104.195397",
      "longitude" : "104.195397",
      "netname" : "CHINANET-SH",
      "organization" : "CHINANET SHANGHAI PROVINCE NETWORK",
      "subnet" : "180.160.0.0/13"
   },
   "ip" : "180.165.133.22",
   "ipv6" : "false",
   "latitude" : "31.2222",
   "location" : "31.2222,121.4581",
   "longitude" : "121.4581",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "China Telecom Group",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 5001,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Bad Request",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 400,
   "subnet" : "180.160.0.0/12",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
93.176.175.64

Network
93.176.128.0/18

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://93.176.175.64:5001/ 400

HTTP Title
400 The plain HTTP request was sent to HTTPS port

ASN
AS15704

Organization
Xtra Telecom S.A.

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
52dd2a8da27f85010960b413cbcb06b2

HTTP Header MD5
8f57d0a690407837a6e100808c5990d8

HTTP Body MD5
ea425366a98dfc499c0cbeedb9a4f02a

HTTP/1.1 400 Bad Request
Server: puta_el_que_lo_lea
Date: Thu, 07 Nov 2024 03:30:50 GMT
Content-Type: text/html
Content-Length: 248
Connection: close

<html>
<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<center>The plain HTTP request was sent to HTTPS port</center>
<hr><center>nginx</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:30:52.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "ea425366a98dfc499c0cbeedb9a4f02a",
         "bodymmh3" : 1153229498,
         "headermd5" : "8f57d0a690407837a6e100808c5990d8",
         "headermmh3" : 186569716,
         "title" : "400 The plain HTTP request was sent to HTTPS port"
      },
      "length" : 406
   },
   "asn" : "AS15704",
   "city" : "Terrassa",
   "country" : "ES",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: puta_el_que_lo_lea\r\nDate: Thu, 07 Nov 2024 03:30:50 GMT\r\nContent-Type: text/html\r\nContent-Length: 248\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "52dd2a8da27f85010960b413cbcb06b2",
   "datammh3" : 237437428,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS15704",
      "continent" : "EU",
      "continentname" : "Europe",
      "country" : "ES",
      "countryname" : "Spain",
      "domain" : [
         "masmovil.com"
      ],
      "isineu" : "true",
      "latitude" : "40.463667",
      "location" : "40.463667,-3.74922",
      "longitude" : "-3.74922",
      "netname" : "ES-MUNDITELECOM-20080319",
      "organization" : "XTRA TELECOM S.A.",
      "subnet" : "93.176.128.0/18"
   },
   "ip" : "93.176.175.64",
   "ipv6" : "false",
   "latitude" : "41.5655",
   "location" : "41.5655,2.0184",
   "longitude" : "2.0184",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Xtra Telecom S.A.",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 5001,
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Bad Request",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 400,
   "subnet" : "93.176.128.0/18",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
108.76.190.132

Network
108.76.0.0/15

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://108.76.190.132:5001/ 400

HTTP Title
400 The plain HTTP request was sent to HTTPS port

ASN
AS7018

Organization
ATT-INTERNET4

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

Product
F5 Nginx

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
0c1820e0d381850a77897bf32978a1f0

HTTP Header MD5
a629a0fe278971ad61801ba6975ba467

HTTP Body MD5
ea425366a98dfc499c0cbeedb9a4f02a

HTTP/1.1 400 Bad Request
Server: nginx
Date: Thu, 07 Nov 2024 03:30:39 GMT
Content-Type: text/html
Content-Length: 248
Connection: close

<html>
<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<center>The plain HTTP request was sent to HTTPS port</center>
<hr><center>nginx</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:30:52.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "ea425366a98dfc499c0cbeedb9a4f02a",
         "bodymmh3" : 1153229498,
         "headermd5" : "a629a0fe278971ad61801ba6975ba467",
         "headermmh3" : -1396157209,
         "title" : "400 The plain HTTP request was sent to HTTPS port"
      },
      "length" : 393
   },
   "asn" : "AS7018",
   "city" : "El Dorado Hills",
   "country" : "US",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Thu, 07 Nov 2024 03:30:39 GMT\r\nContent-Type: text/html\r\nContent-Length: 248\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "0c1820e0d381850a77897bf32978a1f0",
   "datammh3" : 190190724,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS7018",
      "continent" : "NA",
      "continentname" : "North America",
      "country" : "US",
      "countryname" : "United States",
      "domain" : [
         "att.com",
         "att.net"
      ],
      "isineu" : "false",
      "latitude" : "37.09024",
      "location" : "37.09024,-95.712891",
      "longitude" : "-95.712891",
      "netname" : "SBCIS-SBIS",
      "organization" : "AT&T Corp.",
      "subnet" : "108.76.0.0/15"
   },
   "ip" : "108.76.190.132",
   "ipv6" : "false",
   "latitude" : "38.6841",
   "location" : "38.6841,-121.0676",
   "longitude" : "-121.0676",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "ATT-INTERNET4",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 5001,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Bad Request",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 400,
   "subnet" : "108.76.0.0/15",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

IP
1.165.175.110

Network
1.160.0.0/12

Device

<enterprise field>: device.class

Operating System
Linux Linux Kernel

URL

http://1.165.175.110:5001/ 400

HTTP Title
400 The plain HTTP request was sent to HTTPS port

ASN
AS3462

Organization
Data Communication Business Group

Protocol
http

Source
datascan
Operating System
Linux Linux Kernel

Product
F5 Nginx

CPE(s)

<enterprise field>: cpe

This feature requires at least a "Lion View" to unlock. Go to our Pricing page for more.

Data MD5
0c1820e0d381850a77897bf32978a1f0

HTTP Header MD5
a629a0fe278971ad61801ba6975ba467

HTTP Body MD5
ea425366a98dfc499c0cbeedb9a4f02a

HTTP/1.1 400 Bad Request
Server: nginx
Date: Thu, 07 Nov 2024 03:30:50 GMT
Content-Type: text/html
Content-Length: 248
Connection: close

<html>
<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<center>The plain HTTP request was sent to HTTPS port</center>
<hr><center>nginx</center>
</body>
</html>

{
   "@category" : "datascan",
   "@timestamp" : "2024-11-07T03:30:52.000Z",
   "app" : {
      "http" : {
         "bodymd5" : "ea425366a98dfc499c0cbeedb9a4f02a",
         "bodymmh3" : 1153229498,
         "headermd5" : "a629a0fe278971ad61801ba6975ba467",
         "headermmh3" : 1880998821,
         "title" : "400 The plain HTTP request was sent to HTTPS port"
      },
      "length" : 393
   },
   "asn" : "AS3462",
   "city" : "Taichung",
   "country" : "TW",
   "cpe" : "<enterprise field>: cpe",
   "cpecount" : "<enterprise field>: cpecount",
   "data" : "HTTP/1.1 400 Bad Request\r\nServer: nginx\r\nDate: Thu, 07 Nov 2024 03:30:50 GMT\r\nContent-Type: text/html\r\nContent-Length: 248\r\nConnection: close\r\n\r\n<html>\r\n<head><title>400 The plain HTTP request was sent to HTTPS port</title></head>\r\n<body>\r\n<center><h1>400 Bad Request</h1></center>\r\n<center>The plain HTTP request was sent to HTTPS port</center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
   "datamd5" : "0c1820e0d381850a77897bf32978a1f0",
   "datammh3" : 190190724,
   "device" : {
      "class" : "<enterprise field>: device.class"
   },
   "geolocus" : {
      "asn" : "AS3462",
      "continent" : "AS",
      "continentname" : "Asia",
      "country" : "TW",
      "countryname" : "Taiwan",
      "domain" : [
         "hinet.net",
         "twnic.net",
         "twnic.net.tw"
      ],
      "isineu" : "false",
      "latitude" : "23.69781",
      "location" : "23.69781,120.960515",
      "longitude" : "120.960515",
      "netname" : "HINET-NET",
      "organization" : "Data Communication Business Group",
      "subnet" : "1.160.0.0/13"
   },
   "ip" : "1.165.175.110",
   "ipv6" : "false",
   "latitude" : "24.1440",
   "location" : "24.1440,120.6844",
   "longitude" : "120.6844",
   "node" : {
      "country" : "<enterprise field>: node.country",
      "groupid" : "<enterprise field>: node.groupid",
      "id" : "<enterprise field>: node.id",
      "physicalcountry" : "<enterprise field>: node.physicalcountry"
   },
   "organization" : "Data Communication Business Group",
   "os" : "Linux Kernel",
   "osvendor" : "Linux",
   "port" : 5001,
   "product" : "Nginx",
   "productvendor" : "F5",
   "protocol" : "http",
   "protocolversion" : "1.1",
   "reason" : "Bad Request",
   "seen_date" : "2024-11-07",
   "source" : "datascan",
   "status" : 400,
   "subnet" : "1.160.0.0/12",
   "tls" : "false",
   "transport" : "tcp",
   "url" : "/"
}

Returning 10 result(s) out of 559,294 in 0.029 second(s)

122.155.164.151:5001 (tcp/http) - last seen on 2024-11-07 at 03:31:23 UTC

27.46.125.156:5001 (tcp/http) - last seen on 2024-11-07 at 03:31:19 UTC

200.232.24.42:5001 (tcp/unknown) - last seen on 2024-11-07 at 03:31:00 UTC

194.41.36.198:5001 (tcp/unknown) - last seen on 2024-11-07 at 03:30:58 UTC

116.209.24.227:5001 (tcp/http) - last seen on 2024-11-07 at 03:30:54 UTC

91.49.150.152:5001 (tcp/http) - last seen on 2024-11-07 at 03:30:53 UTC

180.165.133.22:5001 (tcp/http) - last seen on 2024-11-07 at 03:30:53 UTC

93.176.175.64:5001 (tcp/http) - last seen on 2024-11-07 at 03:30:52 UTC

108.76.190.132:5001 (tcp/http) - last seen on 2024-11-07 at 03:30:52 UTC

1.165.175.110:5001 (tcp/http) - last seen on 2024-11-07 at 03:30:52 UTC